Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204291.roa
File: AS204291.roa (raw, json)
Hash identifier: sQmKWa3Rx/6Y0nNwXdq8mSctgjiwkJQ+iLyXWIBe3Uw=
Subject key identifier: 6D:E9:B4:CE:0B:C3:BC:E9:B0:27:D9:D7:3A:38:36:58:C4:6C:86:D4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6F79EDEC87D4CA2DB95D1041B2F3161FACB333AD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204291.roa
Signing time: Fri 13 Dec 2024 02:56:29 +0000
ROA not before: Fri 13 Dec 2024 02:51:29 +0000
ROA not after: Fri 12 Dec 2025 02:56:29 +0000
asID: 204291
IP address blocks: 2a06:a005:1740::/44 maxlen: 48
2a06:a005:1750::/44 maxlen: 48
2a06:a005:1770::/44 maxlen: 48
2a06:a005:1780::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Mar 2025 22:14:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:79:ed:ec:87:d4:ca:2d:b9:5d:10:41:b2:f3:16:1f:ac:b3:33:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:29 2024 GMT
Not After : Dec 12 02:56:29 2025 GMT
Subject: CN=6DE9B4CE0BC3BCE9B027D9D73A383658C46C86D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:95:5c:83:73:59:c8:50:46:67:1d:70:5c:
8a:46:2c:aa:62:b1:53:e3:ba:a1:5a:2b:42:b6:e3:
4b:2e:9e:1c:85:dd:b9:8a:50:44:39:8f:05:ef:a7:
d4:22:10:24:42:ce:91:29:32:0b:fa:ac:e6:dc:9f:
d9:1f:a6:d4:89:d8:6f:47:63:5a:e3:7a:da:e0:83:
16:7f:2a:de:31:fa:e7:26:93:44:37:64:33:ad:c0:
ed:e4:c9:e3:69:a9:22:16:17:99:0e:18:d5:7f:b7:
ad:0b:67:0e:2e:89:eb:63:49:2a:f1:07:ba:c7:67:
a7:77:14:88:40:52:ba:ed:81:46:66:66:60:85:d9:
f1:80:89:c3:68:48:fd:0b:91:8d:f9:4f:36:c5:c5:
91:cd:18:d9:ed:0f:ed:a5:3a:07:d6:b0:c6:b2:d8:
f9:38:f2:13:b0:cd:75:12:13:7e:4f:81:72:f4:84:
4e:ca:3a:e0:2f:77:4b:78:8c:8e:ec:34:2f:92:9f:
55:0a:7f:5e:5c:f1:fb:97:a9:de:c8:ac:a1:69:67:
89:a5:6e:ce:c2:4d:71:82:d7:5e:ab:e6:ab:5c:01:
bd:03:e1:24:e6:e4:14:d8:ab:9c:20:27:aa:cd:0d:
49:d0:f3:f3:56:5a:bd:bc:18:82:ce:2d:f3:c7:03:
08:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E9:B4:CE:0B:C3:BC:E9:B0:27:D9:D7:3A:38:36:58:C4:6C:86:D4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204291.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1740::/43
2a06:a005:1770::-2a06:a005:178f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d4:48:0b:af:7e:ed:29:d0:88:07:4d:9e:8d:f7:f4:32:11:ed:
49:1b:b7:03:fa:c0:33:24:45:92:6d:4b:13:1f:74:e8:e4:36:
02:7f:cc:52:0f:e5:4f:3e:4f:51:62:e9:31:bc:57:d9:db:43:
f4:4b:0f:8e:c8:ca:d0:68:0a:3f:59:c2:77:a5:92:14:10:c0:
c3:00:e6:42:5b:bf:86:ef:da:dd:57:7c:72:75:aa:db:1f:2e:
30:cc:97:98:50:8c:37:73:52:df:e4:14:50:61:cf:4d:4f:05:
75:8b:e7:64:b0:c1:89:61:5e:35:56:27:62:26:e7:96:c9:82:
2a:9c:e4:3d:bb:2f:05:7b:bc:32:dc:5b:1c:a1:7a:3e:49:e0:
81:37:b5:e3:f9:18:66:9e:78:26:c5:7d:71:26:b0:c7:34:b4:
81:fa:57:72:71:e2:8f:4b:91:2a:42:21:b2:06:df:e2:27:08:
ac:8a:92:6a:ff:b7:04:26:24:29:51:90:e1:b0:a4:d5:0b:8c:
ed:fa:f2:6f:d8:43:f2:83:e2:ce:25:79:d6:8b:85:30:29:de:
f8:2b:41:93:ed:33:cd:7e:29:0d:46:05:33:2a:10:5b:22:64:
20:d8:77:8b:b5:17:7e:1f:e0:81:a7:5f:dd:a6:84:f0:6e:f0:
49:02:3e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:16:46 2025 by rpki-client